Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d6bcd04c11...ca.pdf

windows7-x64

1

d6bcd04c11...ca.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 17:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6bcd04c11833fd27fdb29e8a4ce1bca.pdf

  • Size

    86KB

  • MD5

    d6bcd04c11833fd27fdb29e8a4ce1bca

  • SHA1

    b361a7f236e6e70f8b19f9ecc86a16935623101a

  • SHA256

    aabea082eff920e49ebcb79d4ce46ce9af9dcf3448020bd7cdf4a6d71c924de5

  • SHA512

    a6823b120bf2d56a05ec9d66812d8c7cb1d123c2ffef9e94493a63a60fb8f36123c136e3b345eb70667e07c2fa9bf1c3f3de2031bc881df596a36184b7d3046a

  • SSDEEP

    1536:UYF6jsG7cV3VQ9zTgymrz1Dy+qdTmNBbi7YGCLScVWDeLVR+LP3AwC+zWQpOCMuv:wj7D93gyuM+z6YG9eLfofC+eC5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d6bcd04c11833fd27fdb29e8a4ce1bca.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6e31710a595e80aed5982a392a1c2731

    SHA1

    dbfe599ce88da1eed6577e188375f7fac3fb567b

    SHA256

    ac299ac6cf0e3ff45e95e75458f96e70faee3683426a39d468799568f0cb3607

    SHA512

    9a1b5973a939b85426e997b183048aab1e5ae823c7999d38b5d352e0cbb797e8a56106559223d6a4ce0eab4d26954eb4820eab520f3aa4dedeea706f13094199

    Download Submit